No description
bfa03c0c67
Flake lock file updates:
• Updated input 'disko':
'github:nix-community/disko/cec44d77d9dacf0c91d3d51aff128fefabce06ee?narHash=sha256-j0fo1rNxZvmFLMaE945UrbLJZAHTlQmq0/QMgOP4GTs%3D' (2025-05-19)
→ 'github:nix-community/disko/a894f2811e1ee8d10c50560551e50d6ab3c392ba?narHash=sha256-AzlJCKaM4wbEyEpV3I/PUq5mHnib2ryEy32c%2Bqfj6xk%3D' (2025-05-26)
• Updated input 'home-manager':
'github:nix-community/home-manager/d0bbd221482c2713cccb80220f3c9d16a6e20a33?narHash=sha256-Qb84nbYFFk0DzFeqVoHltS2RodAYY5/HZQKE8WnBDsc%3D' (2025-05-18)
→ 'github:nix-community/home-manager/83665c39fa688bd6a1f7c43cf7997a70f6a109f9?narHash=sha256-GaBRgxjWO1bAQa8P2%2BFDxG4ANBVhjnSjBms096qQdxo%3D' (2025-05-26)
• Updated input 'lanzaboote/crane':
'github:ipetkov/crane/55e7754ec31dac78980c8be45f8a28e80e370946?narHash=sha256-1hZ/txnbd/RmiBPNUs7i8UQw2N89uAK3UzrGAWdnFfU%3D' (2024-06-04)
→ 'github:ipetkov/crane/ef80ead953c1b28316cc3f8613904edc2eb90c28?narHash=sha256-HQkYvKvaLQqNa10KEFGgWHfMAbWBfFp%2B4cAgkut%2BNNE%3D' (2024-11-08)
• Removed input 'lanzaboote/crane/nixpkgs'
• Updated input 'lanzaboote/flake-parts':
'github:hercules-ci/flake-parts/2a55567fcf15b1b1c7ed712a2c6fadaec7412ea8?narHash=sha256-iKzJcpdXih14qYVcZ9QC9XuZYnPc6T8YImb6dX166kw%3D' (2024-06-01)
→ 'github:hercules-ci/flake-parts/506278e768c2a08bec68eb62932193e341f55c90?narHash=sha256-hgmguH29K2fvs9szpq2r3pz2/8cJd2LPS%2Bb4tfNFCwE%3D' (2024-11-01)
• Updated input 'lanzaboote/pre-commit-hooks-nix':
'github:cachix/pre-commit-hooks.nix/cc4d466cb1254af050ff7bdf47f6d404a7c646d1?narHash=sha256-7XfBuLULizXjXfBYy/VV%2BSpYMHreNRHk9nKMsm1bgb4%3D' (2024-06-06)
→ 'github:cachix/pre-commit-hooks.nix/cd1af27aa85026ac759d5d3fccf650abe7e1bbf0?narHash=sha256-vFta1uHnD29VUY4HJOO/D6p6rxyObnf%2BInnSMT4jlMU%3D' (2024-11-11)
• Updated input 'lanzaboote/pre-commit-hooks-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/614b4613980a522ba49f0d194531beddbb7220d3?narHash=sha256-3Eh7fhEID17pv9ZxrPwCLfqXnYP006RKzSs0JptsN84%3D' (2024-03-17)
→ 'github:NixOS/nixpkgs/d063c1dd113c91ab27959ba540c0d9753409edf3?narHash=sha256-edm8WG19kWozJ/GqyYx2VjW99EdhjKwbY3ZwdlPAAlo%3D' (2024-11-04)
• Updated input 'lanzaboote/rust-overlay':
'github:oxalica/rust-overlay/6dc3e45fe4aee36efeed24d64fc68b1f989d5465?narHash=sha256-wqbRwq3i7g5EHIui0bIi84mdqZ/It1AXBSLJ5tafD28%3D' (2024-06-08)
→ 'github:oxalica/rust-overlay/0be641045af6d8666c11c2c40e45ffc9667839b5?narHash=sha256-Ou7vLETSKwmE/HRQz4cImXXJBr/k9gp4J4z/PF8LzTE%3D' (2024-11-18)
• Removed input 'lanzaboote/rust-overlay/flake-utils'
• Removed input 'lanzaboote/rust-overlay/flake-utils/systems'
• Updated input 'nixos-hardware':
'github:nixos/nixos-hardware/e8f38b2c19c0647e39021c3d47172ff5469af8a9?narHash=sha256-l6jbonaboCBlB8lCjBkrqgh2zEnvt6F3f4dOU/8CLd4%3D' (2025-05-19)
→ 'github:nixos/nixos-hardware/11f2d9ea49c3e964315215d6baa73a8d42672f06?narHash=sha256-dn64Pg9xLETjblwZs9Euu/SsjW80pd6lr5qSiyLY1pg%3D' (2025-05-22)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/ca49c4304acf0973078db0a9d200fd2bae75676d?narHash=sha256-rpR5ZPMkWzcnCcYYo3lScqfuzEw5Uyfh%2BR0EKZfroAc%3D' (2025-05-18)
→ 'github:nixos/nixpkgs/7c43f080a7f28b2774f3b3f43234ca11661bf334?narHash=sha256-rqc2RKYTxP3tbjA%2BPB3VMRQNnjesrT0pEofXQTrMsS8%3D' (2025-05-25)
• Updated input 'nixpkgsMaster':
'github:NixOS/nixpkgs/4e7164464b0c6d686680dd4ebb93076e652e9eb0?narHash=sha256-IT00R92DhZCYbLMJxCdfB/f8Cu777nSJBhRTJ7DBB9A%3D' (2025-05-19)
→ 'github:NixOS/nixpkgs/c04caae6a2de0731e72ce29020684b28d8bc4c95?narHash=sha256-bW5NeMh0DEwMVrF0vA%2B3PPvIVECuTnQMlqPenPrbrXA%3D' (2025-05-26)
• Updated input 'nur':
'github:nix-community/NUR/64046fedb710701f87e5e86390b4dbe77f1d733b?narHash=sha256-dgEK4d1QPNFhv0s5s9lpvEWOVBlRZENp7TVh8V8qYDU%3D' (2025-05-19)
→ 'github:nix-community/NUR/4767c2d34da23c89d0436a92fae2582b0bcea60e?narHash=sha256-O9bDdixbIShL/uyw3nbRYU2k7vd/gKJGUzye%2BFzPQNE%3D' (2025-05-26)
• Updated input 'nur/nixpkgs':
'github:nixos/nixpkgs/292fa7d4f6519c074f0a50394dbbe69859bb6043?narHash=sha256-GaOZntlJ6gPPbbkTLjbd8BMWaDYafhuuYRNrxCGnPJw%3D' (2025-05-18)
→ 'github:nixos/nixpkgs/063f43f2dbdef86376cc29ad646c45c46e93234c?narHash=sha256-6m1Y3/4pVw1RWTsrkAK2VMYSzG4MMIj7sqUy7o8th1o%3D' (2025-05-23)
|
||
|---|---|---|
| .git-crypt | ||
| custom-utils | ||
| hosts | ||
| modules | ||
| pkgs | ||
| users | ||
| .editorconfig | ||
| .envrc | ||
| .gitattributes | ||
| .gitignore | ||
| .sops.yaml | ||
| flake.lock | ||
| flake.nix | ||
| justfile | ||
| README.md | ||
jalr's NixOS Configuration
Install a new host
This installs nixos on host somehost:
NixOS Anywhere
nix run github:nix-community/nixos-anywhere -- --flake .#<somehost> root@<somehost>
The traditional way
nix-shell -p nixUnstable --run 'nixos-install --flake https://gitlab.jalr.de/jalr/nixos-configuration#somehost --no-channel-copy'
Build a configuration
nix build .#nixosConfigurations.iron.config.system.build.toplevel
setting up sops
Get the host key and convert it.
ssh-keyscan -t ed25519 $host | ssh-to-age
Then add the key to .sops.yaml
If the key changed, you might want to run
sops updatekeys hosts/$host/secrets.yaml
nix repl
start an interactive environment for evaluating Nix expressions
$ nix repl
nix-repl> a=builtins.getFlake (toString ./.)
$ nix repl
nix-repl> :lf .#
Import GPG public key
gpg --card-edit
gpg/card> fetch
gpg --edit-key $key
gpg> trust
Your decision? 5
Debugging boot issues
- Add
rd.systemd.debug_shellkernel parameter - Press CTRL+ALT+F9 to switch to root shell